Fallos del tipo CWE-200
3916 resultadosCVE-2026-9349MEDIUMcalcom cal.diy Generic React API bookings-single-view.getServerSideProps.tsx getServerSideProps information disclosureEPSS 0.4%CVE-2026-24498MEDIUMExposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX200EPSS 0.4%CVE-2026-1196LOWMineAdmin getFileInfoById information disclosureEPSS 0.4%CVE-2026-41079MEDIUMOpenPrinting CUPS: Heap out-of-bounds read in SNMP supply-level polling leaks stack memory to authenticated usersEPSS 0.4%CVE-2026-25650MEDIUMMCP Salesforce Connector has arbitrary attribute access which leads to disclosure of Salesforce auth tokenEPSS 0.4%CVE-2024-13796MEDIUMPost Grid and Gutenberg Blocks – ComboBlocks <= 2.3.6 - Unauthenticated User Information ExposureEPSS 0.4%CVE-2026-34839HIGHGlances Vulnerable to Cross-Origin Information Disclosure via Unauthenticated REST API (/api/4) due to Permissive CORSEPSS 0.4%CVE-2022-0850—A vulnerability was found in linux kernel, where an information leak occurs via ext4_extent_header to userspace.EPSS 0.4%CVE-2026-27604CRITICALFOSSBilling: Improper API Role Validation (system) Enables Unauthenticated Access to Privileged Admin FunctionsEPSS 0.4%CVE-2022-32805MEDIUMThe issue was addressed with improved handling of caches. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, maEPSS 0.4%CVE-2022-32870LOWA logic issue was addressed with improved state management. This issue is fixed in iOS 16, macOS Ventura 13, watchOS 9. A user with physicalEPSS 0.4%CVE-2024-33626MEDIUMThe LevelOne WBR-6012 router contains a vulnerability within its web application that allows unauthenticated disclosure of sensitive informaEPSS 0.4%CVE-2024-5813MEDIUMSSH Private Key Leak in BeyondInsight PasswordSafeEPSS 0.4%CVE-2020-1746MEDIUMA flaw was found in the Ansible Engine affecting Ansible Engine versions 2.7.x before 2.7.17 and 2.8.x before 2.8.11 and 2.9.x before 2.9.7 EPSS 0.4%CVE-2022-22447MEDIUMIBM Disconnected Log Collector information disclosureEPSS 0.4%CVE-2022-3611HIGHAn information disclosure vulnerability has been identified in the Lenovo App Store which may allow some applications to gain unauthorized aEPSS 0.4%CVE-2024-26312MEDIUMArcher Platform 6 before 2024.03 contains a sensitive information disclosure vulnerability. An authenticated attacker could potentially obtaEPSS 0.4%CVE-2026-22645MEDIUMThe application discloses all used components, versions and license information to unauthenticated actors, giving attackers the opportunity EPSS 0.4%CVE-2025-60949CRITICALCensus CSWeb leaked configuration filesEPSS 0.4%CVE-2024-40597HIGHAn issue was discovered in the CheckUser extension for MediaWiki through 1.42.1. It can expose suppressed information for log events. (The lEPSS 0.4%